Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D0540AE71BFEB2A2076BF7DA19BA295A07228086207B510AC22056B301E8F4D4/0/3231362e3234312e31372e302f32342d3234203d3e203138373437.roa
File:                     3231362e3234312e31372e302f32342d3234203d3e203138373437.roa (raw, json)
Hash identifier:          BeTN30LLfczVzfqMaXXlUJVSyW17GbQPO+HZoL1XSZk=
Subject key identifier:   72:68:59:1F:C5:B7:2E:98:DD:77:0C:E8:61:72:D0:E3:B4:9C:52:AF
Certificate issuer:       /CN=92FBC72BC92E884A25F6521C6E009627B0E74602
Certificate serial:       5C60D63C05748B4E2C9535F2770917AD03D45E12
Authority key identifier: 92:FB:C7:2B:C9:2E:88:4A:25:F6:52:1C:6E:00:96:27:B0:E7:46:02
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/92FBC72BC92E884A25F6521C6E009627B0E74602.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D0540AE71BFEB2A2076BF7DA19BA295A07228086207B510AC22056B301E8F4D4/0/3231362e3234312e31372e302f32342d3234203d3e203138373437.roa
Signing time:             Tue 05 Mar 2024 17:59:09 +0000
ROA not before:           Tue 05 Mar 2024 17:54:09 +0000
ROA not after:            Tue 04 Mar 2025 17:59:09 +0000
asID:                     18747
IP address blocks:        216.241.17.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Wed 05 Jun 2024 16:30:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5c:60:d6:3c:05:74:8b:4e:2c:95:35:f2:77:09:17:ad:03:d4:5e:12
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=92FBC72BC92E884A25F6521C6E009627B0E74602
        Validity
            Not Before: Mar  5 17:54:09 2024 GMT
            Not After : Mar  4 17:59:09 2025 GMT
        Subject: CN=7268591FC5B72E98DD770CE86172D0E3B49C52AF
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:97:e5:9e:fa:dc:46:d8:4c:8d:20:da:56:96:
                    49:00:02:d6:0c:63:1d:10:93:60:ad:90:4c:ab:bf:
                    5e:50:59:f9:c0:85:85:ed:a5:a2:68:bf:a1:50:99:
                    5b:2c:b3:5a:b1:00:53:63:9a:b2:0f:e4:0d:41:3b:
                    31:e5:b6:2a:ed:14:0d:90:a9:f4:dd:99:67:ed:08:
                    f2:b6:ac:3e:5f:a2:d5:92:91:5b:82:80:88:6b:c7:
                    91:3c:a1:8c:e0:37:87:97:74:21:7a:49:a8:6b:c8:
                    1a:bb:0a:2f:55:74:bd:6a:7d:43:7c:16:98:e7:40:
                    66:6a:f4:0b:d7:45:7d:55:f6:23:e3:99:56:10:b5:
                    f1:b1:49:12:19:32:53:01:aa:ed:6a:41:4f:d4:ad:
                    6e:a9:e5:cb:30:ed:1a:0a:6b:b4:f7:7e:3c:a3:54:
                    7a:1a:43:0d:dd:ed:5a:f6:ce:62:64:a7:7b:33:ea:
                    b4:f5:d8:cc:c4:22:73:d4:12:76:c0:52:60:75:a2:
                    cb:47:37:7e:93:22:0e:1d:1f:8f:a0:e3:6a:f2:31:
                    96:3f:3a:b3:0a:27:99:7c:82:99:29:1d:58:ba:41:
                    64:ab:ee:f8:cd:b5:1b:e2:46:9e:9e:49:f2:2d:c1:
                    b3:23:24:d4:dd:3a:43:1a:d5:17:b8:44:50:c3:8f:
                    bb:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                72:68:59:1F:C5:B7:2E:98:DD:77:0C:E8:61:72:D0:E3:B4:9C:52:AF
            X509v3 Authority Key Identifier:
                keyid:92:FB:C7:2B:C9:2E:88:4A:25:F6:52:1C:6E:00:96:27:B0:E7:46:02

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D0540AE71BFEB2A2076BF7DA19BA295A07228086207B510AC22056B301E8F4D4/0/92FBC72BC92E884A25F6521C6E009627B0E74602.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/92FBC72BC92E884A25F6521C6E009627B0E74602.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D0540AE71BFEB2A2076BF7DA19BA295A07228086207B510AC22056B301E8F4D4/0/3231362e3234312e31372e302f32342d3234203d3e203138373437.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  216.241.17.0/24

    Signature Algorithm: sha256WithRSAEncryption
         34:7a:a9:9f:8c:cb:e7:f8:4a:ef:f2:7a:95:3e:26:57:fe:09:
         3b:9b:f9:d9:35:88:29:cd:79:be:5f:56:ff:ab:ac:ad:53:98:
         62:ac:7f:34:c2:b3:5f:b3:b7:71:57:08:6c:ae:88:d5:9b:6c:
         14:6f:ea:bf:b9:db:76:4d:a0:4f:0f:81:2d:ef:b1:b3:b5:c0:
         e1:f5:1e:8f:58:ed:5c:c6:7f:95:f7:a7:19:29:07:1b:06:60:
         53:50:1b:25:41:1f:2b:17:9b:61:aa:2b:6e:59:ef:e7:8d:82:
         d9:ed:20:36:e6:39:00:02:6c:e1:37:62:aa:2b:1c:b3:4e:3a:
         ab:f3:25:37:12:c1:fe:43:a5:91:e2:c8:e7:8b:39:f4:71:11:
         60:6a:21:aa:34:5a:4b:3d:49:ca:32:f6:e4:11:2f:4f:7c:9e:
         bc:06:d4:ad:77:1d:23:18:3b:76:8e:8b:ea:c0:92:9e:f3:8c:
         ea:f3:f1:06:50:71:e5:a2:35:e1:29:65:60:e6:34:81:96:05:
         99:29:a3:9f:64:3d:63:cc:9e:c8:b1:80:3a:6a:89:f9:b4:da:
         ab:63:b4:5d:77:45:55:bb:53:b7:29:6f:46:ff:1a:68:75:17:
         91:40:bb:f0:93:03:27:9d:c9:98:22:b6:f6:20:a8:f1:7c:a2:
         de:ea:66:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:59 2024 by rpki-client on console-fra.rpki-client.org